Jump to content
Cp3p0

ESET Enterprise Inspector: "Unknown Protocol" / "Certificate verify failed"

Recommended Posts

Hi All,

I'm turning to the forums for help.

I'm experiencing trouble getting my EEI Agents to report back to the EEI Server.
After EEI Agent installation I receive the warning messages from within the ESMC:
"Missing or invalid SSL certificate or certificate authority" & "Can't connect to Enterprise Inspector Server"

From the trace log found under "C:\ProgramData\ESET\EnterpriseInspector\Agent\logs" on the machine I can see errors like:
"Error while sending request to server at "xxxx.local:8093". unknown protocol"
"Error while sending request to server at "xxxx.local:8093". certificate verify failed"

Please help! I've been scratching my head but cannot see where I went wrong with the configuration?

I will outline the steps I've taken below:

1) Install the EEI Agent using the following Client Task from the ESMC console:1058442736_Affecteddevice3.png.de0aa9aeab9261a32f9b8b02cac66434.png

2) Apply a new ESET Enterprise Inspector Agent Policy where I define the only CA found in my ESMC under "Certificate Authorities". Please note there are no other Enterprise Inspector Policies applied:
1531202434_Affecteddevice4.thumb.png.cc620d89c9886c8b728bb396479fcbcd.png

1686622301_Affecteddevice2.png.93ba2ae3ce8b9cd5cf4952b564454844.png1527770339_Affecteddevice5.png.e62310742c7da676bcac0ab80aaa04d6.png
3) After a replication or two these are the errors visible from the ESMC:897558028_Affecteddevice1.png.fe429de57e7602047363d9cae58d47c9.png


4) Trace log from the EEI Agent Machine:2036712663_Affecteddevice6.thumb.png.335c8433c5b4b4658e0f127d413dc51e.png

Re-installing the Agent both via Client task/Manual Repair does not resolve the issue :(.

Any advice would truly be appreciated!

Thank you.

Share this post


Link to post
Share on other sites

Hello @Cp3p0,

a colleague wit EEI expertise spoke to me regarding it, so please check the EEI server cert in the ESMC - in the host field you need to have host name and/or IP address of the server.

So you probably will have to create the new cert from, of course using the same CA and reinstall the EEI server with it, please let us know if that helped.

Peter

Share this post


Link to post
Share on other sites

Thank you guys for the response!

With your help I figured out what the issue was. 

The EI Server certificate only contained the EI Server host name.
However, my EI Agents used the my server Alias as the "Connect to Server" address.

Note to self, if you're going to use the alias for connecting your Agents, make sure it's also mentioned on the EI Server Certificate.
(Not just the server hostname.... Duh)

Edited by Cp3p0

Share this post


Link to post
Share on other sites

Join the conversation

You can post now and register later. If you have an account, sign in now to post with your account.
Note: Your post will require moderator approval before it will be visible.

Guest
Reply to this topic...

×   Pasted as rich text.   Paste as plain text instead

  Only 75 emoji are allowed.

×   Your link has been automatically embedded.   Display as a link instead

×   Your previous content has been restored.   Clear editor

×   You cannot paste images directly. Upload or insert images from URL.


×
×
  • Create New...